CVE-2026-11697

CVE-2026-11697 affects Google Chrome UI due to insufficient validation of untrusted input, enabling a remote attacker to potentially escape the sandbox through a crafted HTML page. Impact is described as a sandbox escape with high severity in Chromium. The issue is fixed in Chrome 149.0.7827.103 ...

CVE-2026-7992

Insufficient validation of untrusted input in UI in Google Chrome on Linux, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...

PT-2023-9313 · Oracle · Oracle Zfs Storage Appliance Kit

Name of the Vulnerable Software and Affected Versions: Oracle ZFS Storage Appliance Kit version 8.8 Description: The issue is related to insufficient input validation in the user interface of the Oracle ZFS Storage Appliance Kit. This easily exploitable vulnerability allows an unauthenticated...

CVE-2021-22021

VMware vRealize Log Insight 8.x prior to 8.4 contains a Cross Site Scripting XSS vulnerability due to improper user input validation. An attacker with user privileges may be able to inject a malicious payload via the Log Insight UI which would be executed when the victim accesses the shared...